On Mon, Aug 21, 2006 at 04:42:04PM +0200, Thijs Kinkhorst wrote: > On Mon, 2006-08-21 at 16:22 +0200, Eric Van Buggenhaut wrote: > > I looked for the first for several hours but didn't find it, looks > > like you're more apt at maintaining that package than I am. So, yes, > > adopt it if you feel so. > > Thanks for your response. I'm not interested in adopting it - I'm > interesting in closing security bugs and preventing security-buggy > applications from entering etch.
That's OK. There's already been discussion about that bug which IMHO isn't a security hole. I disagree with the people who tagged that bug 'security' but I won't start a tag war either. I still wait someone explains me what this bug exaclty compromises, except losing your slashdot password, which in the worst case would lead to someone faking your id in a thread and compromise your karma. Little more. > > > OTOH, there's been no version released for years for that package and > > building cvs snapshots requires time I currently don't have. > > Right. I would conclude then that it'd indeed be better to remove slash > from testing now. If someone wants to adopt it, it will enter testing as > soon as a fixed version has been uploaded. > > Are you willing to keep on maintaining it, or will you file a Request > for Adoption or orphan it? I can RFA it. -- Eric VAN BUGGENHAUT [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
